INFSA-2024:2199: pmix security update
Information about definition
Identificator: INFSA-2024:2199
Type: security
Release date: 2024-12-27 09:49:15 UTC
Information about package
The Process Management Interface (PMI) provides process management functions for MPI implementations. PMI Exascale (PMIx) provides an extended version of the PMI standard specifically designed to support clusters up to and including exascale sizes.
Vulnerabilities description
- CVE-2023-41915
OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2023-41915
|
no information | 8.1 | no information |
Updated packages